CVE-1999-0787

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Sep 17, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0787 is a vulnerability affecting SSH authentication agents. The issue lies in the agent's handling of UNIX domain sockets, as it follows symlinks to these sockets. An attacker could exploit this vulnerability by creating a symlink to a malicious socket and manipulating the authentication process, potentially leading to unauthorized access or data theft. Users are advised to update their SSH agents or implement additional security measures, such as restricting access to authorized users and using secure UNIX domain sockets.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlP7p
https://www.cve.org/CVERecord?id=CVE-1999-0787
https://nvd.nist.gov/vuln/detail/CVE-1999-0787

Back to Vulnerability Database

CVE-1999-0787

CVSS 2.0 Score 2.1 of 10 (low)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations